MakerDAO

MakerDAO Vote Delegate Contract Audit

Cantina Security Report

Organization

@makerdao

Engagement Type

Cantina Reviews

Period

-


Vote Delegation and Hatch Execution Review of MakerDAO

MakerDAO enables decentralized governance through vote delegation and smart contract-driven proposals. The vote-delegate system plays a central role in automating voting flows, managing hatch cooldowns, and handling stake commitments through contracts integrated with DSChief and Lockstake Engine components.

To validate a round of updates, MakerDAO engaged Cantina for a security audits review of the vote-delegate contract. The audit evaluated lock-blocking risks, unnecessary hashed salts, cooldown off-by-one logic, and the updated handling of obsolete IOUs—ensuring secure delegation behavior and consistent system design under active governance usage.

Cantina also helps secure DAO coordination layers like MakerDAO with continued protections through bug bounty programs, crowdsourced security competitions, and multisig security, supporting robust access control and safe token governance.


Findings

Low Risk

1 findings

0 fixed

1 acknowledged

Informational

2 findings

2 fixed

0 acknowledged

Gas Optimizations

1 findings

1 fixed

0 acknowledged